Analysis
-
max time kernel
47s -
max time network
138s -
platform
android_x64 -
resource
android-x64-arm64-20240611.1-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system -
submitted
18-06-2024 09:06
Static task
static1
Behavioral task
behavioral1
Sample
baec48286f89283f9558714dfefe3e29_JaffaCakes118.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral2
Sample
baec48286f89283f9558714dfefe3e29_JaffaCakes118.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral3
Sample
baec48286f89283f9558714dfefe3e29_JaffaCakes118.apk
Resource
android-x64-arm64-20240611.1-en
General
-
Target
baec48286f89283f9558714dfefe3e29_JaffaCakes118.apk
-
Size
26.9MB
-
MD5
baec48286f89283f9558714dfefe3e29
-
SHA1
379c5add88dd69bb837dfb32b48c14d82ffca3be
-
SHA256
e3d6d2fcea73f9e2eec96f026248f1463dcd38313044ddb95471fce968cb1b2c
-
SHA512
0ead5e2997cf7928c0db3136825fe84bec4936e2383ddfb3cb3bad5590b279fab79752cf8c22dd151285e524d0a41b5d66f581648f902c138bd2540a0f0efd75
-
SSDEEP
393216:0QtBWd2QtBWd5QtBWdwQtBWdDQtBWdeQtBWdBQtBWd0QtBWd3QtBWdiQtBWdFQt/:H+n+A+1+u+3+Q+p+S+L+E+C
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.zu.zudescription ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.zu.zu -
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.zu.zudescription ioc process File opened for read /proc/cpuinfo com.zu.zu -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.zu.zudescription ioc process File opened for read /proc/meminfo com.zu.zu